THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE
PUBLISHED

CVE-2024-26686

fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats

AssignerLinux
Reserved2024-02-19
Published2024-04-03
Updated2024-06-04

Description

In the Linux kernel, the following vulnerability has been resolved: fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats lock_task_sighand() can trigger a hard lockup. If NR_CPUS threads call do_task_stat() at the same time and the process has NR_THREADS, it will spin with irqs disabled O(NR_CPUS * NR_THREADS) time. Change do_task_stat() to use sig->stats_lock to gather the statistics outside of ->siglock protected section, in the likely case this code will run lockless.

Product status

Default status
unaffected

1da177e4c3f4 before cf4b8c39b9a0
affected

1da177e4c3f4 before 27978243f165
affected

1da177e4c3f4 before 7601df8031fd
affected

Default status
affected

6.1.82
unaffected

6.7.6
unaffected

6.8
unaffected

References

https://git.kernel.org/stable/c/cf4b8c39b9a0bd81c47afc7ef62914a62dd5ec4d

https://git.kernel.org/stable/c/27978243f165b44e342f28f449b91327944ea071

https://git.kernel.org/stable/c/7601df8031fd67310af891897ef6cc0df4209305

cve.org CVE-2024-26686

nvd.nist.gov CVE-2024-26686

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-26686
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
© Copyright 2024 THREATINT. Made in Cyprus with +